ELSA-2023-6236

ULN >
Oracle Linux Errata repository >
ELSA-2023-6236

ELSA-2023-6236 - binutils security update

Type:	SECURITY
Severity:	MODERATE
Release Date:	2023-11-01

Description

[2.30-119.0.2.2]
- Fix for CVE-2022-4285.
- Fix illegal memory address when parsing an ELF file contaiing corrupt
symbol version information.
Upstream commit 5c831a3c7f3ca98d6aba1200353311e1a1f84c70.
- Partial backport of _bfd_mul_overflow support from upstream commit
1f4361a77b18c5ab32baf2f30fefe5e301e017be
- Reviewed-by: David Faust

Related CVEs

CVE-2022-4285

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory	Channel Label

Oracle Linux 8 (aarch64)	binutils-2.30-119.0.2.el8_8.2.src.rpm	6d2a7c87ea3aec7183c8164196a0ad58	-	ol8_aarch64_appstream
	binutils-2.30-119.0.2.el8_8.2.src.rpm	6d2a7c87ea3aec7183c8164196a0ad58	-	ol8_aarch64_baseos_latest
	binutils-2.30-119.0.2.el8_8.2.src.rpm	6d2a7c87ea3aec7183c8164196a0ad58	-	ol8_aarch64_u8_baseos_patch
	binutils-2.30-119.0.2.el8_8.2.aarch64.rpm	08b760b0cda6bcb7519839e9bfa057ba	-	ol8_aarch64_baseos_latest
	binutils-2.30-119.0.2.el8_8.2.aarch64.rpm	08b760b0cda6bcb7519839e9bfa057ba	-	ol8_aarch64_u8_baseos_patch
	binutils-devel-2.30-119.0.2.el8_8.2.aarch64.rpm	62fb3b4a0894fe627c499a8ff3042690	-	ol8_aarch64_appstream

Oracle Linux 8 (x86_64)	binutils-2.30-119.0.2.el8_8.2.src.rpm	6d2a7c87ea3aec7183c8164196a0ad58	-	ol8_x86_64_appstream
	binutils-2.30-119.0.2.el8_8.2.src.rpm	6d2a7c87ea3aec7183c8164196a0ad58	-	ol8_x86_64_baseos_latest
	binutils-2.30-119.0.2.el8_8.2.src.rpm	6d2a7c87ea3aec7183c8164196a0ad58	-	ol8_x86_64_u8_baseos_patch
	binutils-2.30-119.0.2.el8_8.2.x86_64.rpm	d6fda022f99e151a09bc98db4e7a5cf3	-	ol8_x86_64_baseos_latest
	binutils-2.30-119.0.2.el8_8.2.x86_64.rpm	d6fda022f99e151a09bc98db4e7a5cf3	-	ol8_x86_64_u8_baseos_patch
	binutils-devel-2.30-119.0.2.el8_8.2.i686.rpm	fd49e16ff6caa88f8149fbf4d0b83a7e	-	ol8_x86_64_appstream
	binutils-devel-2.30-119.0.2.el8_8.2.x86_64.rpm	e0c0954e2032598d20da15983a67ae50	-	ol8_x86_64_appstream

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691